Isochronous Event Handling Vulnerability in Linux Kernel by Linux Foundation
CVE-2025-37882

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
9 May 2025

What is CVE-2025-37882?

In the Linux kernel, a vulnerability has been identified that affects isochronous event handling on xHCI (eXtensible Host Controller Interface) devices. This issue arises from potentially mishandling events when the TRB (Transfer Request Block) pointer is either incorrectly set or NULL during processing. A race condition can develop under certain load conditions or due to modified interrupt moderation, leading to skipped transfer descriptors (TDs) after a Missed Service Error (MSE). This behavior may result in premature completion of TDs, causing data loss or a use-after-free (UAF) condition in the xHC. It is essential to ensure that TDs are only completed on appropriate xrun events and maintain proper warnings if queued TDs do not correlate with the current event's TRB pointer.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 608b973b70f87e9a9bafbfdfa16aab68507aef45 < 16a7a8e6c47fea5c847beb696c8c21a7a44c1915

Linux 608b973b70f87e9a9bafbfdfa16aab68507aef45 < 39a080a2925c81b0f1da0add44722ef2b78e5454

Linux 608b973b70f87e9a9bafbfdfa16aab68507aef45 < 906dec15b9b321b546fd31a3c99ffc13724c7af4

References

https://git.kernel.org/stable/c/16a7a8e6c47fea5c847beb696...
https://git.kernel.org/stable/c/39a080a2925c81b0f1da0add4...
https://git.kernel.org/stable/c/906dec15b9b321b546fd31a3c...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.